Thoughts on Cybersecurity, Wi-Fi and some other stuff
Transition Disable is a mechanism to protect a WPA3 network against downgrade attacks and is described in Chapter 8 of the WPA3 Specification 3.3. When this feature is enabled, a station should configure it’s network profile to not connect to the SSID with AKMs that are not allowed in WPA3-only
In a previous blog post, I described connecting the Meraki MX to the internal network. In this blog post, I go through different ways to connect to the internet. The internal connection is not detailed here; this is independent of the external connection to the ISP. Option 1: One MX,
On the Cisco ISE, we can use Downloadable ACLs (DACLs) as an enforcement method to control what our endpoints are allowed to do in the network. These DACLs can be used with Catalyst switches and also with the Catalyst 9800 WLC starting with version 17.10.1 Compared to named ACLs, the
In Part 1 of this Blog post, I described the hardware setup of my LoRaWAN Lab. But the End Nodes and the Gateway is only one-half of a complete LoRaWAN setup. The Things Network shows the whole architecture: Image from https://www.thethingsnetwork.org/docs/lorawan/architecture/ This post is not meant to provide detailed setup
About two years ago, I studied for the CWISA exam from CWNP and learned about LoRaWAN for the first time. With many HomeKit devices, I have been interested in IoT for a long time. But with the CWISA, I got deeper into IoT technologies. When I got informed that my
At this year’s Wireless LAN Professionals Conference (WLPC) in Prague, I again presented a 10Talk. This time, it was about the different versions of IEEE 802.1X: You can download the presentation slides here: In this blog post, I have some additions to this presentation. The intro My initial animation was
Registration is now open for this year’s WLPC (Wireless LAN Professionals Conference) in Prague. These are the important dates: If there are enough registrations, I will teach the WLAN Security Boot Camp. Sadly, this training didn’t get enough bookings. Contact me if you are interested in this training individually for
After looking at the 802.1X and EAP basics in part 1, in this part 2, we go through every packet in a simple EAP-Exchange. Although not used anymore in most situations, this example uses EAP-MD5 because it is easy to understand and perfect for learning how 802.1X and EAP communication
IEEE 802.1X plays an essential role in network security. This blog post gives a basic introduction to the elements used in 802.1X. This content is mainly taken from my WLAN security workshop to introduce 802.1X before moving to more complex authentication scenarios. If you want to learn WLAN security or
There are lots of recommendations on the Intenet for people attending CiscoLive the first time. Here are mine. Perhaps they are helpful for one or the other. Before the conference at home Before the conference in Las Vegas At the conference After the conference Are you already excited? So I